Staff DevSecOps Engineer
New
Based in the United StatesFull-TimeStaff
Salary not disclosed
Apply NowOpens the employer's application page
Job Details
- Experience
- 8+ years
- Required Skills
- AWSPythonKubernetesTypeScriptGoTerraform
Requirements
- 8+ years of experience in cloud infrastructure, platform engineering, or DevSecOps roles.
- Strong hands-on experience with AWS and Kubernetes (EKS) in production-scale environments.
- Deep understanding of platform security principles such as zero-trust architecture, IAM design, and secrets management.
- Experience translating compliance frameworks (e.g., SOC 2, HITRUST) into engineering controls.
- Proficiency with infrastructure-as-code tools such as Terraform.
- Scripting experience in Python, Go, or TypeScript/Node.js.
- Familiarity with CI/CD security practices including artifact integrity and pipeline hardening.
- Strong written communication skills for driving technical decisions asynchronously.
- Ability to work autonomously in remote environments.
Responsibilities
- Champion a security-first engineering approach across platform systems, including AWS and EKS environments, with focus on IAM, secrets management, supply chain security, and container integrity.
- Design and implement automation that transforms compliance requirements into continuous, testable controls and integrates outputs into compliance tooling such as Vanta.
- Build secure-by-default platform patterns using policy-as-code, guardrails, and standardized infrastructure practices to reduce friction for application teams.
- Partner with security stakeholders to translate risk assessments and compliance gaps into actionable engineering solutions.
- Lead end-to-end delivery of platform security initiatives, from architecture and implementation to deployment and documentation.
- Contribute hands-on to core platform systems including CI/CD pipelines, Kubernetes operations, observability tooling, and developer infrastructure.
- Participate in on-call rotations and take ownership of production systems, including incident response and postmortem analysis.
- Mentor engineers and help elevate security practices across the broader engineering organization.
View Full Description & ApplyYou'll be redirected to the employer's site
